Data breaches are a serious business. There can be significant repercussions for organisations for failing to notify the relevant parties of a breach, when required to do so.
The first step towards implementing an effective data protection framework is to understand the risks associated with how your organisation processes personal data.
As an organisation, you are legally required to document your data processing activities. You must include the type of data categories, where the information is stored, how it is used and the legal basis for processing.
GDPR policies and procedures are designed to provide systemic structure, thus creating clarity and consistency by laying out precisely what people need to do and why.
Respecting the rights of individuals isn’t just good practice, it will also facilitate your organisations’ compliance with the other six key principles of the GDPR.
Having an effective records management system in place helps to support access to information, which in turn enables more effective use of resources, so you can easily find and access historical data.
Training is essential when it comes to generating awareness around data protection. It’s also a vital part of putting your company’s policies and procedures into practice.
‘Accountability’ is one of the 7 Principles under the GDPR (General Data Protection Regulation), but various organisations offer differing perspectives on what accountability actually means.
When sharing data between organisations there should always be an accompanying contract or agreement that clearly defines the roles and responsibilities of each party, so they may be held accountable for their part.
Transparency is an important data protection principle, and crucial to businesses when adopting a ‘data protection by design and by default’ approach.
|_ga Google||Third party||1 day||Google Analytics tag used to distinguish one user from another|
|_gat Google||Third party||1 minute||Google Analytics tag. Sometimes appears as |
|_gid Google||Third party||2 years||Google Analytics tag used to distinguish one user from another|